Buffer overflow in omniinet.exe in the inet service in HP OpenView Storage Data Protector 6.00 through 6.20 allows remote attackers to execute arbitrary code via a crafted request, related to the EXEC_CMD functionality.
Max CVSS
10.0
EPSS Score
87.19%
Published
2011-07-01
Updated
2018-10-09

CVE-2011-1865

Public exploit
Multiple stack-based buffer overflows in the inet service in HP OpenView Storage Data Protector 6.00 through 6.20 allow remote attackers to execute arbitrary code via a request containing crafted parameters.
Max CVSS
10.0
EPSS Score
94.79%
Published
2011-07-01
Updated
2017-08-17
Unspecified vulnerability in HP OpenView Storage Data Protector 6.0, 6.10, and 6.11 allows remote attackers to execute arbitrary code via unknown vectors.
Max CVSS
9.3
EPSS Score
60.04%
Published
2011-06-14
Updated
2017-08-17
Directory traversal vulnerability in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to read arbitrary files via directory traversal sequences in a filename in a GET_FILE message.
Max CVSS
8.5
EPSS Score
5.08%
Published
2011-05-07
Updated
2018-10-09
Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed bm message.
Max CVSS
10.0
EPSS Score
77.39%
Published
2011-05-07
Updated
2018-10-09
Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed omniiaputil message.
Max CVSS
10.0
EPSS Score
87.10%
Published
2011-05-07
Updated
2018-10-09
Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed HPFGConfig message.
Max CVSS
10.0
EPSS Score
85.44%
Published
2011-05-07
Updated
2018-10-09
Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed stutil message.
Max CVSS
10.0
EPSS Score
85.44%
Published
2011-05-07
Updated
2018-10-09
Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed EXEC_INTEGUTIL message.
Max CVSS
10.0
EPSS Score
87.10%
Published
2011-05-07
Updated
2018-10-09
Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed EXEC_SCRIPT message.
Max CVSS
10.0
EPSS Score
85.44%
Published
2011-05-07
Updated
2018-10-09
Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed GET_FILE message.
Max CVSS
10.0
EPSS Score
85.44%
Published
2011-05-07
Updated
2018-10-09
Stack-based buffer overflow in OmniInet.exe in the Backup Client Service in HP OpenView Storage Data Protector 6.00, 6.10, and 6.11 allows remote attackers to execute arbitrary code via a malformed EXEC_BAR message.
Max CVSS
10.0
EPSS Score
85.44%
Published
2011-05-07
Updated
2018-10-09
The inet service in HP OpenView Storage Data Protector 6.00 through 6.20 allows remote attackers to cause a denial of service (daemon exit) via a request containing crafted parameters.
Max CVSS
5.0
EPSS Score
0.46%
Published
2011-07-01
Updated
2019-10-09
The inet service in HP OpenView Storage Data Protector 6.00 through 6.20 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a request containing crafted parameters.
Max CVSS
5.0
EPSS Score
0.44%
Published
2011-07-01
Updated
2019-10-09
Unspecified vulnerability in HP OpenView Storage Data Protector 6.0, 6.10, and 6.11 allows remote attackers to cause a denial of service via unknown vectors.
Max CVSS
7.1
EPSS Score
5.33%
Published
2011-01-28
Updated
2017-08-17
Unspecified vulnerability in HP OpenView Storage Data Protector 6.00 and 6.10 allows local users to obtain unspecified "access" via unknown vectors.
Max CVSS
4.6
EPSS Score
0.04%
Published
2010-01-28
Updated
2019-10-09
Integer overflow in the _ncp32._NtrpTCPReceiveMsg function in rds.exe in the Cell Manager Database Service in the Application Recovery Manager component in HP OpenView Storage Data Protector 5.50 and 6.0 allows remote attackers to execute arbitrary code via a large value in the size parameter.
Max CVSS
10.0
EPSS Score
12.11%
Published
2009-12-18
Updated
2009-12-23

CVE-2007-2280

Public exploit
Stack-based buffer overflow in OmniInet.exe (aka the backup client service daemon) in the Application Recovery Manager component in HP OpenView Storage Data Protector 5.50 and 6.0 allows remote attackers to execute arbitrary code via an MSG_PROTOCOL command with long arguments, a different vulnerability than CVE-2009-3844.
Max CVSS
10.0
EPSS Score
95.98%
Published
2009-12-18
Updated
2009-12-23
Unspecified vulnerability in HP OpenView Storage Data Protector on HP-UX B.11.00, B.11.11, or B.11.23 allows local users to execute arbitrary code via unknown vectors.
Max CVSS
6.8
EPSS Score
0.04%
Published
2007-02-09
Updated
2018-10-16
Unspecified vulnerability in the backup agent and Cell Manager in HP OpenView Storage Data Protector 5.1 and 5.5 before 20060810 allows remote attackers to execute arbitrary code on an agent via unspecified vectors related to authentication and input validation.
Max CVSS
7.5
EPSS Score
27.64%
Published
2006-08-17
Updated
2017-07-20
Unspecified vulnerability in HP OpenView Storage Data Protector 5.1 and 5.5 allows remote attackers to execute arbitrary code via unknown vectors.
Max CVSS
7.5
EPSS Score
6.54%
Published
2006-05-24
Updated
2018-10-18
21 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!